$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa/039241b2-b599-30f0-bcc6-07b9fed5d863.roa File: 039241b2-b599-30f0-bcc6-07b9fed5d863.roa (raw, json) Hash identifier: YMn0Znnd3U1tSgUG+ICptU38OLvUlhUJtiXCmoBQQnk= Subject key identifier: 23:0B:66:AA:10:DA:99:65:4F:FA:4A:33:DC:D8:53:2B:6B:A6:73:DD Certificate issuer: /CN=daa8bdf2-31df-4e1e-bcf3-96d6c5800faa Certificate serial: 010D0C9F4328584D98BAA8CFD5BC26361D0AC300 Authority key identifier: C8:21:6A:53:54:33:76:13:DB:FB:F3:B4:60:95:5E:18:1E:6A:D3:C5 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa/039241b2-b599-30f0-bcc6-07b9fed5d863.roa Signing time: Thu 23 Apr 2026 01:00:24 +0000 ROA not before: Thu 23 Apr 2026 01:00:24 +0000 ROA not after: Wed 22 Jul 2026 01:00:24 +0000 asID: 398210 IP address blocks: 168.220.176.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 28 Apr 2026 19:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:4d:98:ba:a8:cf:d5:bc:26:36:1d:0a:c3:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=daa8bdf2-31df-4e1e-bcf3-96d6c5800faa Validity Not Before: Apr 23 01:00:24 2026 GMT Not After : Jul 22 01:00:24 2026 GMT Subject: CN=d87d5ec5-21fc-4445-906f-1edaf199653e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:0b:e5:6e:7e:e2:3a:bb:35:55:5e:e6:83:49: b2:70:a5:2b:71:32:8f:c2:99:af:1d:f6:a9:0d:cf: 13:02:8c:b5:7a:50:f5:ba:34:22:08:2f:9d:77:52: 08:58:2b:59:34:1c:30:a7:f2:ad:c8:12:12:b2:04: 68:60:c7:46:78:f6:e4:65:27:86:4d:55:97:71:e0: b5:b1:f0:89:62:99:78:dd:60:eb:1c:5d:ee:fa:1b: a3:54:2a:bb:64:8a:88:a4:69:93:0c:4f:52:e1:24: 31:e4:36:18:88:6c:33:dd:0e:f4:ef:90:93:75:41: ac:65:04:35:21:91:48:06:c3:c6:b1:98:c5:9d:36: 37:cc:c0:87:c9:d0:9a:38:85:c5:17:10:a8:b9:37: 58:a7:46:6e:df:27:c1:f4:b5:fc:ba:e3:5f:68:20: 66:9c:22:f7:a2:51:97:73:cc:8f:ef:c8:2d:09:e7: 94:ab:b4:3c:c7:66:11:a8:d1:24:23:94:eb:64:17: e1:42:20:6c:25:75:5a:be:9d:c9:f1:77:7c:6d:c4: 04:2d:30:1b:13:59:a9:56:87:15:e0:0b:f6:23:c0: 5f:e2:63:aa:3d:2b:ee:a1:3c:c3:59:b7:05:71:e8: 13:04:c0:0c:d4:47:4e:2a:4b:1a:bf:87:8e:cd:67: 15:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:0B:66:AA:10:DA:99:65:4F:FA:4A:33:DC:D8:53:2B:6B:A6:73:DD Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa/039241b2-b599-30f0-bcc6-07b9fed5d863.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa.crl X509v3 Authority Key Identifier: keyid:C8:21:6A:53:54:33:76:13:DB:FB:F3:B4:60:95:5E:18:1E:6A:D3:C5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa.cer sbgp-ipAddrBlock: critical IPv4: 168.220.176.0/23 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 91:10:8d:7f:c3:87:89:2a:e4:56:9c:8b:f5:c1:48:da:f6:9a: 5f:9b:84:ee:35:78:c3:80:eb:f0:fd:fd:e5:3e:e3:61:2d:3f: fa:d2:05:e5:b8:e9:52:0f:b8:9b:9e:3a:22:14:03:26:2f:3a: 7b:23:02:87:1c:99:dc:cf:7d:01:e6:81:e7:76:8a:e6:c2:ec: 23:7b:3b:2d:9c:27:a3:c7:3f:87:e1:78:ce:14:7f:b5:3e:58: 84:17:e5:df:80:e4:21:a2:78:58:92:77:17:7f:f1:12:f5:85: 54:c8:3b:84:c4:bd:9c:b5:f7:8f:aa:3d:e3:6b:46:bf:d0:d0: 1d:bc:40:55:cb:1f:3b:8c:85:60:3c:2e:32:6c:00:cb:00:87: 57:2b:99:14:2f:07:71:24:6e:7e:33:46:d9:c3:97:a7:42:e1: bc:7c:93:cf:03:c1:77:88:7a:74:c0:3d:e9:2c:8d:6d:2d:68: 6d:04:53:2c:86:f0:16:14:f2:8e:50:4c:3e:57:b8:29:65:ca: a7:58:7f:c0:57:3a:90:d9:57:ea:c3:38:df:41:05:af:d7:89: 51:cd:cb:dc:35:7f:4d:e8:4a:41:8e:57:29:ec:d1:f5:be:72: 42:fc:df:57:ed:b9:17:fe:e9:f9:b7:ae:ef:f8:d6:64:17:c0: fd:b2:18:26 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWE2YuqjP1bwmNh0KwwAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkZGFhOGJkZjItMzFkZi00ZTFlLWJjZjMtOTZkNmM1ODAw ZmFhMB4XDTI2MDQyMzAxMDAyNFoXDTI2MDcyMjAxMDAyNFowLzEtMCsGA1UEAxMk ZDg3ZDVlYzUtMjFmYy00NDQ1LTkwNmYtMWVkYWYxOTk2NTNlMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnAvlbn7iOrs1VV7mg0mycKUrcTKPwpmvHfap Dc8TAoy1elD1ujQiCC+dd1IIWCtZNBwwp/KtyBISsgRoYMdGePbkZSeGTVWXceC1 sfCJYpl43WDrHF3u+hujVCq7ZIqIpGmTDE9S4SQx5DYYiGwz3Q7075CTdUGsZQQ1 IZFIBsPGsZjFnTY3zMCHydCaOIXFFxCouTdYp0Zu3yfB9LX8uuNfaCBmnCL3olGX c8yP78gtCeeUq7Q8x2YRqNEkI5TrZBfhQiBsJXVavp3J8Xd8bcQELTAbE1mpVocV 4Av2I8Bf4mOqPSvuoTzDWbcFcegTBMAM1EdOKksav4eOzWcVZQIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFCMLZqoQ2pllT/pKM9zYUytrpnPdMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy9kYWE4 YmRmMi0zMWRmLTRlMWUtYmNmMy05NmQ2YzU4MDBmYWEvMDM5MjQxYjItYjU5OS0z MGYwLWJjYzYtMDdiOWZlZDVkODYzLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy81MjFlYjMzZi05 NjcyLTRjZDktYWNjZS0xMzcyMjdlOTcxYWMvZGFhOGJkZjItMzFkZi00ZTFlLWJj ZjMtOTZkNmM1ODAwZmFhL2RhYThiZGYyLTMxZGYtNGUxZS1iY2YzLTk2ZDZjNTgw MGZhYS5jcmwwHwYDVR0jBBgwFoAUyCFqU1QzdhPb+/O0YJVeGB5q08UwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzUyMWViMzNmLTk2NzItNGNk OS1hY2NlLTEzNzIyN2U5NzFhYy9kYWE4YmRmMi0zMWRmLTRlMWUtYmNmMy05NmQ2 YzU4MDBmYWEuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBqNywMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAJEQjX/Dh4kq5Faci/XBSNr2ml+bhO41eMOA6/D9/eU+42EtP/rSBeW4 6VIPuJueOiIUAyYvOnsjAoccmdzPfQHmged2iubC7CN7Oy2cJ6PHP4fheM4Uf7U+ WIQX5d+A5CGieFiSdxd/8RL1hVTIO4TEvZy194+qPeNrRr/Q0B28QFXLHzuMhWA8 LjJsAMsAh1crmRQvB3Ekbn4zRtnDl6dC4bx8k88DwXeIenTAPeksjW0taG0EUyyG 8BYU8o5QTD5XuCllyqdYf8BXOpDZV+rDON9BBa/XiVHNy9w1f03oSkGOVyns0fW+ ckL831ftuRf+6fm3ru/41mQXwP2yGCY= -----END CERTIFICATE-----Generated at Mon Apr 27 11:18:35 2026 by rpki-client